Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-1153

Can't configure empty base-dn for ldap realm

XMLWordPrintable

    • Hide

      Try to configure a security-realm with ldap authentication/authorization with empty base-dn attribute; you get
      "WFLYCTL0113: '' is an invalid value for parameter base-dn. Values must have a minimum length of 1 characters"

      Show
      Try to configure a security-realm with ldap authentication/authorization with empty base-dn attribute; you get "WFLYCTL0113: '' is an invalid value for parameter base-dn. Values must have a minimum length of 1 characters"
    • Compatibility/Configuration
    • Workaround Exists
    • Hide

      Custom ldap login module; change enterprise ldap users/groups to match a common base-dn

      Show
      Custom ldap login module; change enterprise ldap users/groups to match a common base-dn

      It is not possible to set the empty value for base-dn attribute in authentication->ldap element and in authorization>ldap>group-search->group-to-principal element.
      The empty value is the only valid option for java ldap searches to scan the entire ldap (the equivalent of RootDSE).

              Unassigned Unassigned
              a.persello Alberto Persello (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated: